Privacy Policy

Read our Privacy and Data Protection Policy

This information notice is provided, in compliance with Articles 13 and 14 of Regulation (EU) 679/2016 (hereinafter: “Regulation” or “GDPR”), to users (hereinafter: “Users” or “User”) of the website, in desktop and mobile version, (hereinafter: “Site”) owned by Insights S.r.l., the Data Controller (hereinafter: “Data Controller”), with registered office in Milan, Via Fabio Filzi no. 25 (postcode: 20125), and is intended to describe how the Site is managed with regard to the processing of personal data, and to allow Users to know the purposes and methods of processing personal data.

The services offered by the Controller are intended for persons over the age of 18. Should the Controller become aware of the processing of data of minors under the age of 18 without the valid consent of their parents or legal guardians, the Controller reserves the right to unilaterally interrupt the use of the service offered as well as to delete the data acquired.

The person concerned assumes responsibility for the data of third parties obtained, published or shared and warrants that he or she has the right to communicate them, releasing the Data Controller from any liability towards third parties.

This information is provided exclusively for the Site and does not concern other sites that can be reached by the User through links that may be present on the Site itself.

Principles applicable to the Processing of Personal Data

The Data Controller, pursuant to and for the purposes of the Regulation, informs that the aforementioned legislation provides for the protection of individuals with respect to the processing of personal data and that such processing will be based on principles of correctness, lawfulness, transparency and protection of confidentiality and fundamental rights.

Object of Processing

The User’s data that may be processed by the Controller when using the Site are specified below.

Personal data acquired automatically when visiting the Site:

Navigation data. The Owner automatically collects data on the device (PC, tablet, mobile phone or other mobile device) and on the connection used by the User including, for example, the IP address, the date and time of access, information on hardware and software, information on events concerning the device, crash data.
Site usage data. The Owner collects information on how the User has used the Site including, for example, the pages and content viewed, searches performed, third party applications on the Site that are used by the User and links to third party sites and applications that the User has clicked on. This data is collected even if the User has not logged in to the account created through the Site or has not created an account.
Personal data provided directly by the User and Data required for the use of the account created on the Site

Required Data provided for the registration of the account. The Data Controller collects the information required on a mandatory basis for the creation of the User’s account on the Site. These are fields that, if not filled in, do not allow the User to continue with account registration.
Compulsory information provided by filling in the “Contact us now” form. For the purposes of the contact request, the User enters the following data (marked as compulsory by “*”) first name, last name, email. These are fields which, if not filled in, do not allow the contact request to continue.

Optional data

Non-compulsory data provided for account registration.
Data provided by e-mail enquiries. If the User explicitly and voluntarily requests information by email to the addresses indicated on the Site, the Controller acquires the User’s email address, name and surname and any personal data included in the communication.
Non-compulsory data provided by filling in the “Request a Realiytics demo” form. Optionally, the User may enter data such as, for example, company, telephone, etc. in order to submit a contact request.

Personal data collected via cookies

The Owner uses cookies to collect data on the User’s activity via the Site/App and his/her preferences, as well as other technical data relating to the User.
For further information on the use of cookies, the User can consult the cookie policy at the following link

Legal Basis for Processing

Personal data provided by Users are processed for the following purposes:

A) to ensure the correct and safe operation of the Site;
B) to allow Users to take advantage of the services rendered through the Site
C) to make possible the management and use of the reserved area on the Site
D) communicate to Users information relating to their reserved area
E) resolve disputes arising with Users;
F) prevent, detect, mitigate and investigate fraud, security breaches and potentially prohibited or illegal activities;
G) identify and solve problems Users encounter when using the Site (e.g. blocked or non-functioning pages), and provide them with a better experience
H) provide Users with industry information, news and curiosities;
I) marketing purposes.
The legal basis for the processing referred to in A); B); C); D) must be identified, pursuant to Article 6(1)(b) GDPR, in the performance of contractual obligations and pre-contractual measures.

The legal basis of the processing under E) and G) must be identified, pursuant to Art. 6, para.

1, l. f), GDPR in the legitimate interest of the Data Controller.

The processing referred to in point F) is based, pursuant to Art. 6(1)(c) GDPR, on the fulfilment of a legal obligation to which the Data Controller is subject.

The legal basis for processing under H) and I) must be identified, pursuant to Art. 6(1)(a) GDPR, in the consent freely given by the User.

Processing and Storage of Personal Data

The Data Controller ensures that personal data are processed in full compliance with the Regulations and the laws in force in Italy, by means of manual, computerised or telematic systems. Processing may also be carried out by means of automated tools designed to store, manage and transmit the data.

The data collected and processed will be protected with physical and logical methods such as to minimise the risks of unauthorised access, dissemination, loss and destruction of data, pursuant to Articles 25 and 32 of the Regulation.

Data processing will last no longer than is necessary to fulfil the purposes for which they were collected, such as storing search criteria, notifying and contacting professional operators.

Users who have made a request through the forms on the Site may be contacted by the Data Controller to follow up on their requests and to be informed of the opportunities offered by the solutions, products, data and services of Insights S.r.l.

Pursuant to art. 7 paragraph 3 of the Regulation, the interested party has the right to obtain withdrawal of consent to processing at any time. To request the deletion of their personal data, the data subject may send a request to the email address

If the Controller does not receive a cancellation request, the personal data will be kept for a period not exceeding 10 (ten) years, starting from the date of the last access to the Site.

Place of Processing

The data are processed and stored at the Data Controller’s operational headquarters (on paper and/or electronic media) and in any other place where the parties involved in the processing are located (e.g. on servers located within the European Union).The data subject is entitled to obtain information on the legal basis for the transfer of data outside the European Union or to an international organisation under public international law or consisting of two or more countries, as well as on the security measures adopted by the Data Controller to protect the data during the transfer.

Should one of the transfers just described take place, the data subject may refer to the respective sections of this document and/or request information from the Controller by contacting him at the contact details given in this notice.

Recipients of Personal Data

The personal data collected may be processed by subjects or categories of subjects acting, pursuant to Article 28 GDPR, as Data Processors or, pursuant to Article 29 GDPR, authorised to process the data.

Forms filled in on the site by Users convey personal data in accordance with the best security measures available to the Data Controller to a contact management system (commonly referred to as CRM – Customer Relationships Management) named Zoho on servers located in the European Union. For more information on Zoho Corporation Pvt’s data security and processing policies, please view the following page which is owned and operated by this third party company:

Apart from the aforementioned hypotheses, personal data will not be communicated except to subjects, entities and Authorities to which communication is compulsory by law or regulation.

Transfer of Data to a Third Country or International Organisation

Personal data collected through the Site may be transferred outside the national territory only and exclusively to perform the services requested through the Site, to provide the most appropriate responses to the requests made, to improve the services requested and in compliance with the specific provisions of the GDPR. Any transfer of data outside the European Union will in any case take place in full compliance with the GDPR and with the so-called Standard Contractual Clauses where necessary.

Rights of the Data Subject

The User has the right to request at any time

the confirmation of the existence or non-existence of personal data concerning him/her, even if not yet registered, in a concise, transparent, intelligible and easily accessible form, using simple and clear language;
indication of:
(a) the origin of the personal data;
(b) the purposes and methods of processing
c) the legitimate interests pursued by the Controller or by third parties
d) the recipients or categories of recipients of the personal data, if any
e) of the controller’s intention, if any, to transfer personal data to a third country or international organisation
(f) the storage period of the personal data
g) the logic applied, as well as the importance and expected consequences of such processing for the data subject, in the event of processing carried out with the aid of electronic instruments as part of an automated collection and/or profiling process
h) the identification details of the Data Controller, the Data Processors, the Designated Representative (if any) and the Data Protection Officer (DPO)
i) the subjects and categories of subjects to whom the personal data may be communicated or who may become aware of the data in their capacity as designated representative in the territory of the State, data processors or persons in charge of processing;
the possibility of lodging a complaint with a supervisory authority;
updating, rectification or, where interested therein, integration of the data;
the cancellation, transformation into anonymous form or blocking of data processed in breach of the law, including data whose storage is not necessary in relation to the purposes for which the data were collected or subsequently processed
the restriction of processing;
the portability of personal data concerning him/her to another data controller;
revocation of consent to processing. On this point, please note that revocation of consent to data processing does not affect the lawfulness of the processing carried out until such revocation;
opposition, in whole or in part, for legitimate reasons, to the processing of personal data concerning him/her, even if pertinent to the purpose of collection.
To exercise these rights, the data subject may contact the Controller at any time with a written request – without formalities – to .

The Controller shall process the User’s requests within and no later than one month of receipt. Depending on the complexity and number of requests received by the Controller, the aforementioned deadline may be extended by two months. In this case, within one month of receipt of the request, the Controller shall inform the User of the extension of the deadline and the reasons for it.

The Data Controller:

The Data Controller is Insights S.r.l. (C.F. and P.I.: 06780840481), with registered office in Milan at via Carlo Farini 41 (Zip code: 20159), Telephone: (+39) 057 7890782,


The Data Protection Officer (DPO)

Pursuant to Article 37 GDPR, the Data Controller has appointed a Data Protection Officer who can be reached at the following email address


This Privacy Policy may be subject to change. If there are substantial changes to the use of data relating to the User by Insights S.r.l., Insights S.r.l. will notifỳ

the User by posting them prominently on its pages.

Date last updated: the 25th September 2023